Errors thrown from manipulated SQL queries in Contao version 2.11.6 leak full path disclosure information.
7e6b48191d1b037c49db3bb5bf91ac674378024ef6feaf084e613f9089ca9dec
Grandstream GXP1405 Executive IP Phone version 1.0.1.110 suffers from a cross site scripting vulnerability.
085dd412ff4de4befbb77fa720a29fb16c6c26df27da5d00fb6ba4c0bf04c0dd